Fixed condition preventing teachers/admins to check invisible directories (probably introduced along with check_visibility_tree())

14 years ago · 817da9f7e4
parent 92a04d6554
commit 817da9f7e4
1 changed files with 3 additions and 3 deletions
--- a/main/document/document.php
+++ b/main/document/document.php
@ -195,7 +195,7 @@ if (isset($document_id)) {
 	    	}    	
 	    	exit;
 	    } else {
-	    	if (!$visibility) {
+	    	if (!$visibility && !api_is_allowed_to_edit()) {
 	    		api_not_allowed();
 	    	}
 	    }
@ -743,10 +743,10 @@ if ($is_allowed_to_edit) {
    if ((isset($_GET['set_invisible']) && !empty($_GET['set_invisible'])) || (isset($_GET['set_visible']) && !empty($_GET['set_visible'])) && $_GET['set_visible'] != '*' && $_GET['set_invisible'] != '*') {
        // Make visible or invisible?
        if (isset($_GET['set_visible'])) {
-            $update_id = $_GET['set_visible'];
+            $update_id = intval($_GET['set_visible']);
            $visibility_command = 'visible';
        } else {
-            $update_id = $_GET['set_invisible'];
+            $update_id = intval($_GET['set_invisible']);
            $visibility_command = 'invisible';
        }